Stolen information include user email addresses and hashed passwords. Zomato said it has reset the passwords for all affected users and have logged them out of the app and websiteETtech | Updated: May 18, 2017, 12:01 IST

Online restaurant discovery and food delivery service Zomato has disclosed that about 17 million user records has been stolen from its database.

Stolen information include user email addresses and hashed passwords. The company however noted that no payment information or credit card data has been compromised in this leak.

Zomato said it has reset the passwords for all affected users and have logged them out of the app and website. While the leaked passwords were hashed, it is recommended to change your password for any other services in case you have reused it.

"Our team is actively scanning all possible breach vectors and closing any gaps in our environment. So far, it looks like an internal (human) security breach - some employee’s development account got compromised" Zomato CTO Gunjan Patidar said in an official blogpost.

Patidar said they will be actively working to plug any more security gaps that they find in their systems over the next couple of days and weeks.

"We’ll be further enhancing security measures for all user information stored within our database. A layer of authorisation will be added for internal teams having access to this data to avoid the possibility of any human breach." Patidar added.